#homelab it's become clear to me that I shouldn't be running something I really don't understand! I still haven't figured out why my #ovs / #OVN cluster won't work even though the cluster looks like it's up and has a leader! Can't really find support for it either. I ain't no chump! I'm ganna fix this!! But it's clear I shouldn't be running it.

#network #networking #overlay #OpenvSwitch

Hat wer Erfahrungen, wie man im Proxmox + Open Vbridge eine Netzwerkverbindung einer VM debuggen kann? Ich würde gern eine zweite VM mit wireshark aufsetzen, die einen Spiegelport der zu untersuchenden VM hat....
#proxmox #wireguard #OVS #OpenVSwitch

The SDN / VXLAN Proxmox saga continues...

After posting this I noticed some strange behavior. I was getting ping packets fine and nmap was showing the https service for my new firewall. The problem was when I would navigate to my new firewall management site it wouldn't work. I would get ssl_error_rx_record_too_long on firefox and timeouts on Chrome.

I opened up Wireshark and noticed the return traffic for SSL was severely delayed and appeared malformed.

What I missed in my instructions is that VXLAN takes up 50 bytes for encapsulation, so for the endpoints within the internal network I had to set a custom MTU of 1450 so that the VXLAN encapsulation could happen within the 1500 limit of the interface.

After configuring this on one of the internal machines and it worked to get to the site I thought maybe I had to also configure the 1450 MTU on the firewall's internal interface. I did that and was immediately getting some rapid connect and drops on my home network so I reverted that change. I really don't know why changing the MTU on the internal interface of the firewall would cause that on my main network but it did, so I reverted it. It seems any device on that internal LAN will need the MTU change other than the firewall, for all the traffic to work properly.

Now it looks like the next thing to do is to start putting various machines behind the new routers to start segmenting my lab network, and get it off of the flat network for increased security and traffic isolation and control.

The Proxmox guide I linked earlier will give more details on the 50 byte allocation for VXLAN.

@zrail @r3pek @junq

#homelab #proxmox #networking #sdn #vxlan #ovs #selfhosted #selfhostingmastodon #MTU

Ok quick update: I got Proxmox SDN working with VXLAN and Vnets across the cluster!

To reproduce:

1. Install SDN per instructions (about three easy steps per node). See docs: https://pve.proxmox.com/wiki/Software_Defined_Network
2. Add a Zone at the SDN datacenter level. Specify Zone name and Prox nodes to apply to.
3. Add a Vnet at the SDN datacenter level. Specify zone, Vnet name, and VXLAN ID.
4. Apply SDN configuration, this pushes the Vnet config to each Prox node.
5. Add/replace interface on target VM. In my case for testing I added an interface targeting the new Vnet and specified IPv4 statics on two VMs on separate prox nodes and pinged each other.

@zrail @r3pek @junq

#homelab #proxmox #networking #sdn #vxlan #ovs #selfhosted #selfhosting

Currently patching my Proxmox cluster to prep the experimental SDN functionality to enable me to do VXLAN across my cluster of nodes.

I want to test this so I can have virtual routers with devices on the same internal networks but spread across multiple physical nodes.

I'm familiar with doing this on VMware with dVSes and VLANs but trying to replicate it on Proxmox. If this doesn't work as expected I may end up trying some other options. Hope to solve this in software so I don't have to buy gear.

#homelab #proxmox #networking #sdn #vxlan #ovs #selfhosted #selfhosting

@train @juref

I do networking too so maybe I can accomplish it but one of the things I wanted to do with Proxmox was use the capability of distributed virtual switches across nodes in my cluster. What I see in Proxmox is the ability to add bridges via OVS but they don't seem to have a higher-level abstraction across the multiple nodes. It looks like OVN can be that abstraction and communicate between the clustered nodes, but I'm not completely sure how it works.

Currently I don't have a managed switch behind my cluster so no VLANs, and only a single interface per node so I can't solve it with individual interface mappings. If OVN can handle that abstraction and still transport over my existing link and interface with the OVS bridge that would be great and solve my issue.

I know you're using lxd instead of Proxmox so it's not exactly apples-to-apples but I was hoping what you're doing is conceptually compatible with what I am looking to do.

#homelab #ovn #ovs #proxmox #lxd #lxc #networking

Vodafone Happy Friday del 10 Giugno 2022: buoni sconto a tema viaggio e abbigliamento - MondoMobileWeb.it | News | Telefonia | Offerte #abbigliamento #buonosconto #codicesconto #codicevodafone #flixbus #Giugno2022 #happyfriday #myvodafone #ovs #premivodafone #pullman #regalovodafone #sconto10euro #sconto15 #venerdvodafone #viaggio #vodafone #vodafonehappy #10giugno https://parliamodi.news/article/aHR0cHM6Ly93d3cubW9uZG9tb2JpbGV3ZWIuaXQvMjM3MjI0LXZvZGFmb25lLWhhcHB5LWZyaWRheS1kZWwtMTAtZ2l1Z25vLTIwMjItYnVvbmktc2NvbnRvLWEtdGVtYS12aWFnZ2lvLWUtYWJiaWdsaWFtZW50by8=

OK. Effectivement c'était bien "juste" un problème de MAC address lié au passage en bullseye...
Maintenant faut que je trouve pourquoi j'ai plus de bridge #openvswitch (peut être la même erreur ?)

RT @zwindler@twitter.com

Des gens arrivent à faire des bridges avec #ProxmoxVE 7 ?
Depuis l'upgrade, dès que j'assigne ma carte réseau comme port du bridge, je me coupe la chique.
Impossible de démarrer un bridge, qu'ils soit classique ou bien #OVS
😒😢😡

🐦🔗: https://twitter.com/zwindler/status/1413211446897414144

Des gens arrivent à faire des bridges avec #ProxmoxVE 7 ?
Depuis l'upgrade, dès que j'assigne ma carte réseau comme port du bridge, je me coupe la chique.
Impossible de démarrer un bridge, qu'ils soit classique ou bien #OVS
😒😢😡